module PSS:
The same hash function is used for padding, MGF and computing message digest. MGF is MGF1 as defined in PKCS #1 2.1.
Keys must have a minimum of 2 + hlen + slen
bytes, where hlen
is the
hash length and slen
is the seed length.
Parameters: |
|
val sign : ?g:Nocrypto.Rng.g ->
?slen:int -> key:Nocrypto.Rsa.priv -> Cstruct.t -> Cstruct.t
sign ~g ~slen ~key message
the -padded digest of message
,
signed with the key
. slen
is the optional seed length and default to
the size of the underlying hash function.Insufficient_key
(see Insufficient_key)val verify : ?slen:int -> key:Nocrypto.Rsa.pub -> signature:Cstruct.t -> Cstruct.t -> bool
verify ~slen ~key ~signature message
checks whether signature
is a
valid PSS signature of the message
under the given key
.